Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to unauthenticated password resets via login/resetadminpassword of the default admin account. This vulnerability only exists when the default admin account is not disabled. It is fixed in 20.01.1 and 19.11.2.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Pcoip_management_console | Teradici | 19.11.1 (including) | 19.11.1 (including) |
Pcoip_management_console | Teradici | 20.01.0 (including) | 20.01.0 (including) |